Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138302e302f32342d3234203d3e20313336373837.roa
File: 38332e3133362e3138302e302f32342d3234203d3e20313336373837.roa (raw, json)
Hash identifier: 4O/CaH7abZzQvivyeep8vk0zG6Nd4rQASVLOTWHWiIc=
Subject key identifier: 0B:7D:1E:80:73:70:3F:89:26:65:4F:80:40:92:87:80:05:C5:42:F5
Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Certificate serial: 1AE5CF086B521524EEC077E66833A87A69732319
Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138302e302f32342d3234203d3e20313336373837.roa
Signing time: Fri 20 Sep 2024 14:04:59 +0000
ROA not before: Fri 20 Sep 2024 13:59:59 +0000
ROA not after: Fri 19 Sep 2025 14:04:59 +0000
asID: 136787
IP address blocks: 83.136.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:e5:cf:08:6b:52:15:24:ee:c0:77:e6:68:33:a8:7a:69:73:23:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c
Validity
Not Before: Sep 20 13:59:59 2024 GMT
Not After : Sep 19 14:04:59 2025 GMT
Subject: CN=0B7D1E8073703F8926654F804092878005C542F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d6:6d:eb:7e:8e:5a:b6:56:47:f0:d8:46:43:
a5:52:e4:a6:c1:95:10:c1:ed:cd:86:24:a7:4a:19:
05:64:c0:58:20:c6:81:71:cf:81:33:d6:0c:86:03:
31:24:58:8b:47:22:a3:a2:f3:ae:15:63:77:8e:cf:
91:e5:67:e6:92:46:21:9c:3d:06:27:d1:e9:b1:dd:
87:4e:52:f7:b1:e5:65:6c:7b:4a:dd:aa:04:3d:3b:
57:ec:3c:53:4d:57:25:a7:e0:d5:e7:82:8d:79:7a:
d0:67:73:61:d7:9e:bc:34:3f:80:1c:58:15:35:07:
67:f1:34:18:37:99:e1:58:c5:58:4e:f1:51:06:f4:
a6:62:41:29:e0:c0:4a:6f:82:b2:d9:d9:bc:92:33:
26:b3:9a:9c:ca:c0:87:34:e8:99:4d:5d:95:4d:81:
c4:16:1e:76:5e:c4:1d:db:13:5f:44:cb:4a:26:4b:
5c:0b:2d:34:55:64:d4:48:8b:b1:98:59:8c:24:de:
26:27:76:f9:2f:17:0c:e1:6d:14:1f:a6:ae:71:bb:
70:56:0c:fc:b7:4e:9d:c0:e7:ed:47:9a:37:c6:f3:
4c:c5:73:d9:e1:20:79:c6:08:25:19:3c:93:b2:37:
c9:68:ae:ed:af:9c:b5:a6:d5:c1:10:00:90:a3:b9:
48:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7D:1E:80:73:70:3F:89:26:65:4F:80:40:92:87:80:05:C5:42:F5
X509v3 Authority Key Identifier:
keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138302e302f32342d3234203d3e20313336373837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.180.0/24
Signature Algorithm: sha256WithRSAEncryption
42:41:77:f6:90:fe:f8:a2:f1:43:af:19:45:db:7a:5d:64:4d:
04:f1:f8:c4:54:23:5b:d9:32:a5:21:0d:61:22:11:50:bc:d7:
f4:d2:a5:c4:dd:ba:ae:3c:41:62:61:82:a1:46:5c:5b:c9:7f:
e7:2b:9c:bf:20:01:2d:a5:f6:3c:15:4c:58:fd:d3:db:79:07:
03:e9:59:ac:e8:7e:4a:9e:fd:89:71:72:32:13:b2:54:db:30:
c5:86:d4:ff:36:79:0d:82:7c:44:c8:f5:ae:0a:e6:1f:72:62:
45:27:ea:f0:f9:f5:c8:1c:12:df:80:f5:ec:b9:44:c1:48:32:
5d:37:e6:56:23:20:0d:cb:e8:83:fd:6d:d9:0b:20:65:f7:4e:
d6:e4:7b:ee:75:1e:ff:bb:f3:40:86:c5:ae:6f:56:14:b2:ca:
07:28:12:2a:f2:58:30:a7:31:27:ed:62:6d:d6:e8:32:10:5a:
f1:e1:fa:df:cc:9e:f7:f2:c1:08:df:a3:2e:1d:ca:f0:0d:84:
6f:2a:28:ac:09:27:8b:14:cc:7f:25:9f:d8:6d:b5:3a:6e:d6:
b5:be:f0:d5:a1:84:1b:48:c0:f9:cf:79:c8:dd:4e:6b:b8:09:
13:ef:86:7a:05:19:cd:47:28:47:9b:35:2b:2a:bc:87:32:d1:
79:88:33:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 03:42:59 2024 by rpki-client on console-fra.rpki-client.org